$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e35302e302f32342d3234203d3e203435333132.roa File: 3230322e38312e35302e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: oHePA7aUhJX/ZSWqvWUmtiR6pLipsm4MtFPmXynkXL0= Subject key identifier: 43:66:8F:45:25:C5:DC:4D:FA:38:DC:48:11:D7:F6:E1:6E:FD:ED:AF Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 43F86AEA5D860C6833B59346D808FEA6C65063A0 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e35302e302f32342d3234203d3e203435333132.roa Signing time: Fri 22 Nov 2024 08:00:38 +0000 ROA not before: Fri 22 Nov 2024 07:55:38 +0000 ROA not after: Fri 21 Nov 2025 08:00:38 +0000 asID: 45312 IP address blocks: 202.81.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f8:6a:ea:5d:86:0c:68:33:b5:93:46:d8:08:fe:a6:c6:50:63:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Nov 22 07:55:38 2024 GMT Not After : Nov 21 08:00:38 2025 GMT Subject: CN=43668F4525C5DC4DFA38DC4811D7F6E16EFDEDAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:71:3c:a8:3a:e6:54:ab:98:7a:fd:ba:86:c6: 87:05:4e:6b:d9:d2:af:09:ce:ee:3d:84:7c:26:62: 6e:d7:87:f6:4e:39:30:30:19:9d:bc:03:6c:d2:5f: 7b:96:e1:fe:39:e4:95:c7:e9:0e:f6:c9:a0:1e:77: 8b:26:eb:b0:75:d6:4e:cd:25:14:33:d3:ea:99:f8: a6:f4:0d:b9:85:9e:76:30:c7:91:ac:22:01:dd:bd: ca:1a:47:61:7e:47:67:7f:b2:76:6a:49:d4:a3:af: 8a:ab:83:d2:ad:25:0a:b3:37:1b:40:7c:01:f8:2c: 9b:f2:c7:d8:5c:a3:89:b5:ea:06:47:c1:9c:bd:e3: 66:30:c3:9a:f5:67:da:e4:87:94:29:a5:87:cb:20: 84:d6:89:c6:94:2e:2f:f9:b0:e1:4a:dc:66:44:18: c7:00:46:91:c3:57:c9:ad:d6:27:94:bf:bd:f7:fa: e5:f3:73:f4:ab:60:41:59:24:26:f5:47:f6:c3:15: 01:12:19:b3:80:26:5b:34:74:30:45:77:db:6c:d6: eb:7e:a5:a3:c4:40:1a:72:44:7e:bb:3b:74:0e:c1: ed:8a:5b:da:21:53:a8:7a:b1:f3:e3:93:43:d5:9e: 33:d1:78:93:e4:ff:42:b1:d5:17:06:7c:50:73:2c: ab:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:66:8F:45:25:C5:DC:4D:FA:38:DC:48:11:D7:F6:E1:6E:FD:ED:AF X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e35302e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.81.50.0/24 Signature Algorithm: sha256WithRSAEncryption 93:4d:df:09:bd:a0:96:cb:5f:17:e5:27:a0:a4:b6:c0:86:8a: 81:6a:8e:51:7c:97:28:32:e3:42:7f:2f:33:4c:54:62:f0:53: 35:88:21:6d:c1:53:dc:08:bd:36:36:80:5c:7b:8f:a6:e4:08: cc:59:5e:b3:6a:7d:ba:8a:45:69:47:16:34:48:d7:52:82:09: 2f:83:e4:82:c3:82:86:a9:69:4d:3c:ff:84:ce:cd:16:58:59: 0d:1f:9b:99:90:76:51:bf:07:b6:43:1e:67:fa:60:77:b3:f5: 03:84:ad:d2:e7:0f:74:c3:55:b8:e3:29:21:32:52:49:95:c7: 6c:7a:47:95:ae:e2:67:8a:5c:fc:73:f5:cc:d9:93:b6:fe:76: 06:f6:e2:90:fc:f1:1a:6b:bc:b4:f5:32:54:ce:3e:73:56:3d: 3f:f0:e3:77:6d:7b:2a:23:5c:7d:38:0d:0d:52:7a:b5:46:7c: 14:6d:56:cb:73:60:6a:40:63:de:8e:97:72:9c:3d:91:58:cb: e5:a4:ab:28:61:e8:ae:f5:28:5c:5d:dd:6c:f9:8f:79:0d:3d: 2f:06:fc:c5:6e:b5:ce:00:4f:b8:bd:0a:7e:4e:e6:7e:a7:cd: 10:52:4a:45:20:7d:58:56:b2:7f:08:f8:b9:ff:9d:5d:fd:7e: a8:e5:5b:2b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQ/hq6l2GDGgztZNG2Aj+psZQY6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNDExMjIwNzU1MzhaFw0yNTExMjEwODAwMzhaMDMxMTAvBgNV BAMTKDQzNjY4RjQ1MjVDNURDNERGQTM4REM0ODExRDdGNkUxNkVGREVEQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMcTyoOuZUq5h6/bqGxocFTmvZ 0q8Jzu49hHwmYm7Xh/ZOOTAwGZ28A2zSX3uW4f455JXH6Q72yaAed4sm67B11k7N JRQz0+qZ+Kb0DbmFnnYwx5GsIgHdvcoaR2F+R2d/snZqSdSjr4qrg9KtJQqzNxtA fAH4LJvyx9hco4m16gZHwZy942Yww5r1Z9rkh5QppYfLIITWicaULi/5sOFK3GZE GMcARpHDV8mt1ieUv733+uXzc/SrYEFZJCb1R/bDFQESGbOAJls0dDBFd9ts1ut+ paPEQBpyRH67O3QOwe2KW9ohU6h6sfPjk0PVnjPReJPk/0Kx1RcGfFBzLKvjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQ2aPRSXF3E36ONxIEdf24W797a8wHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzAzMjJlMzgzMTJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKUTIwDQYJKoZIhvcN AQELBQADggEBAJNN3wm9oJbLXxflJ6CktsCGioFqjlF8lygy40J/LzNMVGLwUzWI IW3BU9wIvTY2gFx7j6bkCMxZXrNqfbqKRWlHFjRI11KCCS+D5ILDgoapaU08/4TO zRZYWQ0fm5mQdlG/B7ZDHmf6YHez9QOErdLnD3TDVbjjKSEyUkmVx2x6R5Wu4meK XPxz9czZk7b+dgb24pD88RprvLT1MlTOPnNWPT/w43dteyojXH04DQ1SerVGfBRt VstzYGpAY96Ol3KcPZFYy+Wkqyhh6K71KFxd3Wz5j3kNPS8G/MVutc4AT7i9Cn5O 5n6nzRBSSkUgfVhWsn8I+Ln/nV39fqjlWys= -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:13 2024 by rpki-client on console-ams.rpki-client.org